Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203415.roa
File: AS203415.roa (raw, json)
Hash identifier: GR5gCwRj44yEMHNj8HlYNsipTn3lUyJUO9KZCwTGAt4=
Subject key identifier: 4B:E6:48:F5:6A:0F:0A:F7:DB:D5:16:D3:10:E1:8F:31:0B:D2:96:D9
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 20976F8333DE98786F6E05BB0E0C89C05E0B9F4A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203415.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 203415
IP address blocks: 2a06:a005:5ac::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:97:6f:83:33:de:98:78:6f:6e:05:bb:0e:0c:89:c0:5e:0b:9f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=4BE648F56A0F0AF7DBD516D310E18F310BD296D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:15:cd:9c:a1:92:d6:b4:c7:c8:27:8a:19:
00:54:d3:76:d1:dc:fa:06:65:f5:78:00:ad:0b:b6:
75:7d:3f:c6:bf:82:83:9f:37:68:ea:29:99:18:71:
a9:dd:2d:2b:d0:6b:c2:50:04:2e:ed:2e:cf:5f:25:
5d:c1:73:e7:6a:43:3e:d0:96:90:d6:72:b3:4c:02:
38:b1:ca:28:f3:18:f8:4b:54:a5:ac:93:e1:70:04:
e3:2b:40:8f:52:f3:13:c6:6b:ab:74:d5:80:be:c8:
f2:f6:a9:e7:f2:8e:aa:87:02:32:b1:fc:c1:4a:d7:
60:37:6b:4c:ac:5c:b2:a9:01:c3:ef:8b:a1:c2:55:
97:05:92:db:20:e8:67:e8:40:10:0c:05:54:01:c6:
53:83:8c:97:50:e0:6f:68:60:c0:dd:a6:96:11:be:
84:65:44:a4:0c:45:28:11:d8:4e:32:82:f1:8c:9d:
da:7e:4c:ef:9f:2a:15:32:1c:7b:a4:e7:72:28:07:
55:76:2e:d3:fb:76:3e:7f:89:23:67:b3:b6:36:2c:
0d:e6:65:3e:a6:67:a0:5f:88:5c:dd:17:a5:d4:8c:
9e:ac:3f:58:48:77:fe:5f:fb:be:f8:76:e4:d2:bb:
41:fc:5b:3e:05:71:58:ba:2b:56:d8:2a:34:c6:7d:
a6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E6:48:F5:6A:0F:0A:F7:DB:D5:16:D3:10:E1:8F:31:0B:D2:96:D9
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203415.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5ac::/48
Signature Algorithm: sha256WithRSAEncryption
61:65:9e:70:8d:d0:72:de:64:b8:29:a0:ca:fc:25:4b:83:b2:
c2:d3:23:1f:fb:84:13:ca:2b:82:3a:01:53:71:c9:6e:13:78:
2a:0a:fb:91:cd:78:7e:1b:4e:7c:11:d0:17:1d:f4:1e:d1:1b:
0d:9b:ea:d2:54:0b:4f:41:17:96:81:9b:a6:53:3e:b4:00:da:
d9:5c:89:29:c0:b6:cb:0c:2d:4e:c0:1f:5c:3b:e7:d5:8d:71:
a2:17:6c:81:8e:4e:2e:df:8a:54:75:3e:95:29:0f:fb:96:08:
21:dd:12:d8:d3:e2:04:e4:ad:97:e0:11:b1:f7:5b:3a:98:cd:
d1:95:43:0a:55:fb:0f:dc:eb:33:b2:94:3a:e6:d4:af:62:9b:
d7:8f:3b:ff:a2:ef:cb:fe:dd:0c:ba:5e:78:06:98:55:4a:3d:
af:03:9f:b6:b2:48:57:c1:2b:5d:62:8b:5a:ad:49:48:f7:ab:
a9:ef:34:7c:28:51:a1:53:16:d3:e2:82:7b:eb:fc:fb:be:35:
11:cf:46:bf:73:44:f0:2d:71:49:bf:de:21:f4:51:2d:7a:24:
c9:3e:52:90:64:7a:4c:9e:03:bc:78:57:57:0a:f2:cf:67:fa:
aa:38:1d:a7:6e:39:c9:4a:47:cb:32:0f:3a:2d:db:c6:8e:d0:
4b:12:6b:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org